I'm looking for a way to essentially block the entire internet, except for 1 website. Most methods I have found involve a blacklist, but I need something with a whitelist. Where only listed websites work. Any ideas?
Find the IP address of that one site, change the DNS's of each computer to something invalid (e.g. 127.0.0.1), and then add the IP address of that one site to the HOSTS file.Some further info, this is on Windows 8, and using Chrome. And I'm looking for something where the settings can't be changed by a non-admin account. Basically, my company is going to be giving out lots of laptops to the workers for the sole purpose of going to a single site and entering data while on the job. Currently, I have IE uninstalled and found an extension in Chrome that does what I need, but you can just open the extension and change the whitelist. I'm sure most won't know how to do that, but there may be some. And still, you can plug in a thumbdrive with Firefox Portable and use that.
That may work. I'd like to be able to keep the admin account with working internet though.Find the IP address of that one site, change the DNS's of each computer to something invalid (e.g. 127.0.0.1), and then add the IP address of that one site to the HOSTS file.
Seems like it should work given that shouldn't know of any domains besides the ones in hosts.
Edit: And don't forget to flush the dns cache.
I have to have Chrome though as the site doesn't work in IE because nothing seems to work in IE11. Also, I thought you couldn't change the Host files anymore in Windows 8. And don't you have to be running Windows NT to use GPOs?In Internet Explorer you can define proxy server & exclusions for specific sites. You can set nonexistent proxy & put your site in exclusion. If you want to prohibit changing this behavior, just give to user non-administrative rights to system & configure these settings through GPO (gpedit.msc for WG computer or AD policies for domain). It's also may be useful to enable software execution restrictions in GPO to protect against alternative browsers.
They'll be out and about connecting to either families' routers or with a portable hotspot with a data plan.Does your router allow parental control settings of some sort? My shitty ISP provided router/modem unit can allow only a certain website after blocking them all, theoretically. Which can also be assigned to each laptop individually after giving them static DCHPs.
That may work. I'd like to be able to keep the admin account with working internet though.
<at symbol>echo off
SET NEWLINE=^& echo.
FIND /C /I "YourOnlySite.com" %WINDIR%\system32\drivers\etc\hosts IF %ERRORLEVEL% NEQ 0 ECHO %NEWLINE%^255.255.255.255 YourOnlySite.com>>%WINDIR%\System32\drivers\etc\hosts
netsh interface ip set dns name="Local Area Connection" static 127.0.0.1 index=1
netsh interface ip set dns name="Local Area Connection" static 127.0.0.1 index=2
ipconfig /flushdns
<at symbol>echo off
netsh interface ip set dnsservers name="Local Area Connection" source=dhcp
ipconfig /flushdns